Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

10

73a0b9f18e...bf.exe

windows7-x64

9

73a0b9f18e...bf.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    73a0b9f18ef44b99c83e708093319634823e5e5349007e36354fe08edc608dbf

  • Size

    96KB

  • Sample

    240502-3btpjahb91

  • MD5

    7d4db4bf4b920361a32f2b58acfef9eb

  • SHA1

    70dd77dbf214eaf7a2f0a5403ef191b7ea00a709

  • SHA256

    73a0b9f18ef44b99c83e708093319634823e5e5349007e36354fe08edc608dbf

  • SHA512

    5ce5330375ad264451900bb7cde19425b3fb13c888d2649b8e848960aaf5009c262f6107eb1675d5fc062112ea31b2e95e42cc35febcf15a8d42ba5bc64c783a

  • SSDEEP

    1536:Isz1++PJHJXFAIuZAIuekc9zBfA1OjBWgOI3uicwa+shcBEN2iqxtdSCow8hfB+:hfAIuZAIuYSMjoqtMHfhfB+

Score
10/10
ransomwareupx

Malware Config

Targets

    • Target

      73a0b9f18ef44b99c83e708093319634823e5e5349007e36354fe08edc608dbf

    • Size

      96KB

    • MD5

      7d4db4bf4b920361a32f2b58acfef9eb

    • SHA1

      70dd77dbf214eaf7a2f0a5403ef191b7ea00a709

    • SHA256

      73a0b9f18ef44b99c83e708093319634823e5e5349007e36354fe08edc608dbf

    • SHA512

      5ce5330375ad264451900bb7cde19425b3fb13c888d2649b8e848960aaf5009c262f6107eb1675d5fc062112ea31b2e95e42cc35febcf15a8d42ba5bc64c783a

    • SSDEEP

      1536:Isz1++PJHJXFAIuZAIuekc9zBfA1OjBWgOI3uicwa+shcBEN2iqxtdSCow8hfB+:hfAIuZAIuYSMjoqtMHfhfB+

    Score
    9/10
    ransomwareupx

    • Renames multiple (3479) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • UPX dump on OEP (original entry point)

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks